Question No. 1

An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM.

Which step must the administrator take to achieve this task?

AConfigure a fabric connector with a notification policy on FortiSIEM to connect with FortiGate.

BCreate a notification policy and define a script/remediation on FortiSIEM.

CDefine a script/remediation on FortiManager and enable a notification rule on FortiSIEM.

DDeploy a mitigation script on Active Directory and create a notification policy on FortiSIEM.

Show Answer

Correct Answer: B

https://fusecommunity.fortinet.com/blogs/silviu/2022/04/12/fortisiempublishingscript

Question No. 2

An OT supervisor needs to protect their network by implementing security with an industrial signature database on the FortiGate device.

Which statement about the industrial signature database on FortiGate is true?

AA supervisor must purchase an industrial signature database and import it to the FortiGate.

BAn administrator must create their own database using custom signatures.

CBy default, the industrial database is enabled.

DA supervisor can enable it through the FortiGate CLI.

Show Answer

Correct Answer: D

Question No. 3

Refer to the exhibit.

PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT can send traffic to each other at the Layer 2 level.

What must the OT admin do to prevent Layer 2-level communication between PLC-3 and CLIENT?

ASet a unique forward domain for each interface of the software switch.

BCreate a VLAN for each device and replace the current FGT-2 software switch members.

CEnable explicit intra-switch policy to require firewall policies on FGT-2.

DImplement policy routes on FGT-2 to control traffic between devices.

Show Answer

Correct Answer: A, B

Question No. 4

Which three common breach points can be found in a typical OT environment? (Choose three.)

AGlobal hat

BHard hat

CVLAN exploits

DBlack hat

ERTU exploits

Show Answer

Correct Answer: B, D, E

Question No. 5

How can you achieve remote access and internet availability in an OT network?

ACreate a back-end backup network as a redundancy measure.

BImplement SD-WAN to manage traffic on each ISP link.

CAdd additional internal firewalls to access OT devices.

DCreate more access policies to prevent unauthorized access.

Show Answer

Correct Answer: B

Free Fortinet NSE7_OTS-7.2 Exam Actual Questions

The questions for NSE7_OTS-7.2 were last updated On Nov 19, 2024